diff options
author | Josh Kalderimis <josh.kalderimis@gmail.com> | 2011-04-23 12:50:29 +0200 |
---|---|---|
committer | Josh Kalderimis <josh.kalderimis@gmail.com> | 2011-04-24 09:53:18 +0200 |
commit | 1054ebd613c5596bc1ebb8d610d19e5fa374cca5 (patch) | |
tree | 40863d881726f63ca0c7ffe226d559d9ea333809 /activemodel/test/cases/secure_password_test.rb | |
parent | af1b48926f49226c934995c322ee017239158cf3 (diff) | |
download | rails-1054ebd613c5596bc1ebb8d610d19e5fa374cca5.tar.gz rails-1054ebd613c5596bc1ebb8d610d19e5fa374cca5.tar.bz2 rails-1054ebd613c5596bc1ebb8d610d19e5fa374cca5.zip |
AM mass assignment security attr_accessible and attr_protected now allow for scopes using :as => scope eg.
attr_accessible :name
attr_accessible :name, :admin, :as => :admin
Diffstat (limited to 'activemodel/test/cases/secure_password_test.rb')
-rw-r--r-- | activemodel/test/cases/secure_password_test.rb | 11 |
1 files changed, 6 insertions, 5 deletions
diff --git a/activemodel/test/cases/secure_password_test.rb b/activemodel/test/cases/secure_password_test.rb index c455cf57b3..6950c3be1f 100644 --- a/activemodel/test/cases/secure_password_test.rb +++ b/activemodel/test/cases/secure_password_test.rb @@ -45,13 +45,14 @@ class SecurePasswordTest < ActiveModel::TestCase end test "visitor#password_digest should be protected against mass assignment" do - assert Visitor.active_authorizer.kind_of?(ActiveModel::MassAssignmentSecurity::BlackList) - assert Visitor.active_authorizer.include?(:password_digest) + assert Visitor.active_authorizers[:default].kind_of?(ActiveModel::MassAssignmentSecurity::BlackList) + assert Visitor.active_authorizers[:default].include?(:password_digest) end test "Administrator's mass_assignment_authorizer should be WhiteList" do - assert Administrator.active_authorizer.kind_of?(ActiveModel::MassAssignmentSecurity::WhiteList) - assert !Administrator.active_authorizer.include?(:password_digest) - assert Administrator.active_authorizer.include?(:name) + active_authorizer = Administrator.active_authorizers[:default] + assert active_authorizer.kind_of?(ActiveModel::MassAssignmentSecurity::WhiteList) + assert !active_authorizer.include?(:password_digest) + assert active_authorizer.include?(:name) end end |